-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 On 10/14/2019 8:45 AM, plugd wrote: > > Sean Conner writes: >> Anyway, have fun with the tests. > > Thanks for these, they're very useful. > > I notice that you've added a sixth test at > gemini://gemini.conman.org/test/torture/0027 which redirects to a > non-gemini (gopher) URL. Unless my reading comprehension is > failing me, the explanatory text suggests that correct handling of > this redirect should be for the client to open the gopher URL. > > Is this behaviour really desirable? > > I vote for no. The text/gemini files already support links to > non-gemini URLs. Allowing server-directed redirects to non-gemini > URLs would simply mean that I could no longer be sure that a > gemini:// URL would access a gemini resource. Meaning that I could > no longer be sure that the transaction is encrypted. And that's > just with gopher - the server could make all sorts of surprising > things happen on my computer if the client happens to support other > protocols. > I can't see any value in server redirects to other protocols, especially since many clients will not support other protocols, and of those, the one's that will actually be part of the effect that launches another client (i.e, Gopher client, Web browser, etc.) will likely be few and far between. The test itself is great but, given the potential to wreak havoc client side, don't think it's advisable too permit. Even in the case of Elpher, I'm not comfortable as a user visiting a Gemini site and encountering a server redirect to a Gopher resource even though the client does support that. I'm advocating 'shall not' or 'must not' in the curent Gemini specs. - -- Bradley D. Thornton Manager Network Services http://NorthTech.US TEL: +1.310.421.8268 -----BEGIN PGP SIGNATURE----- Comment: Find this cert at hkps://keys.openpgp.org Comment: Using GnuPG with Thunderbird - https://www.enigmail.net/ iQEzBAEBCAAdFiEENWT7St9Eg6sLyiLAuIw5wQytyEkFAl2k/rEACgkQuIw5wQyt yEl/qQf/f1QqohMMr8IcLtgdb+bVKqt6z/pJjNq5mTJtttogPlpzKkOT5al1CpFI PoxedbQqdqc9zwu5vakuf+q7CWt+67ERJEIRsY38WGdZtVOgXWyOMyCGkdsNJR8O 9x/Fw5tpgJULPiEWpbL0AfaE0Y8+I7VYOSlesZz7Ex6a6wcVGFh/dCTCwlbj9bI3 CWQ+D4naCoPCiBm3cVZoVuXJ94VMZnw4+5Ij3kD7ATYmhylfrNrWf3x41oSoXEEs bEs4Wgv7l5xX0gRa22yRcsaXLiOwbCJBDxHYkEwJNAWV/lJLc9Pi0Ky4A/q6qJfi +S4DcYVWQDno9hQE7ml1T9j229ubzQ== =fSFE -----END PGP SIGNATURE-----
---
Previous in thread (11 of 17): 🗣️ Sean Conner (sean (a) conman.org)
Next in thread (13 of 17): 🗣️ Sean Conner (sean (a) conman.org)